Executive Summary

At first glance, Druva inSync and Code42 CrashPlan might seem similar, as both are designed
for end-user data protection, provide flexible deployment options, license per-user and have
some common features. However, inSync has several architectural advantages and integrated
features, such as cloud application data collection & archival, proactive compliance, data loss
prevention (DLP), file sharing, and data governance, which provide businesses with higher
value at a lower total cost of ownership (TCO) than CrashPlan does.

Druva designed inSync as a unified end-user data protection, sharing, and governance
solution that delivers the visibility and management needed for large enterprises. This
approach enables organizations to benefit from the performance increases delivered by
our unique global deduplication system, as well as minimize the data replication inherent
with siloed solutions. Security and governance remain centralized, providing comprehensive
audit trails, and the ability for legal hold across laptops, mobile devices, and cloud apps.

This report will compare the features of Code42 CrashPlan and Druva inSync across several
different categories, including: data deduplication, device refresh & OS migration, legal hold
& and eDiscovery, proactive compliance, security and data privacy, data availability and
durability, and integrated file sync and share.

The per-device model results in a single 100MB file, stored on 20 user’s devices being backed up
20 times, whereas global deduplication which will only store it once

Without email awareness, a PST file must be assessed and backed-up every pass, resulting in a
lot of wasted storage

inSync

inSync’s deduplication is global, application-aware, and client-side which results in 70-80%
bandwidth and storage savings.

inSync deduplicates data across all users/
devices in the enterprise

Because of its application-aware nature,
inSync provides optimal deduplication
with Outlook, PDF, and Office files as it
accurately determines block boundaries
and can recognize objects within as well as
across these file types

inSync is far more efficient in backing up
large PST files as it uses MAPI to deduplicate
at the message/attachment level

Bandwidth and storage savings mean less
time spent in storage management, better
end user experience, and lower TCO

Storage and bandwidth usage over time:

80%LESS

inSync will use 17TB less storage and bandwidth
(80% less) compared to traditional backup after 1 year of implementation.

3. Device Refresh & OS Migration

CrashPlan

Currently CrashPlan only supports backing up of Windows user profiles, and does not
support OS X environments.

CrashPlan uses Microsoft’s User State Migration Tool (USMT) in migrating system settings
and application data and requires .XML files to determine what is included in the profile
backup. CrashPlan does not provide the default .XML files for USMT and requires users to
supply/create them for profile backups
to occur.

For the CrashPlan app to backup user profile data, USMT must be installed or deployed on
each device backing up to the Code42 server, requiring additional work for IT admins.

inSync

With inSync’s Persona backup, users can backup system and application settings in addition
to their files and folders.

Saves end-user time spent in manually reconfiguring system and application settings to get
back their familiar working environment

Can be used for OS migration or laptop refreshes, eliminating the need to purchase software
specific to OS migration that has no use after the migration process is completed

Makes replacement/refresh and OS upgrade/migration processes efficient with user self-restore
of both data and settings

4. Legal Hold & eDiscovery

Legal Hold & eDiscovery

Code42 CrashPlan

Druva inSync

Federated search and legal hold

Limited

Yes

Chain of custody reports

No

Yes

Admin tamper-proof audit trails

No

Yes

Direct access for eDiscovery platforms

No

Yes (e.g. AccessData, Recommind, DISCO)

Cloud apps data collection & archival

No

Yes (Office 365, Google, Apps, Box, Salesforce)

CrashPlan

Overall CrashPlan’s legal hold capabilities are basic, using a classic backup model that
requires IT/Legal to move the data to an intermediary preservation server. More advanced
features such as full text search, investigative search and data culling, are notably absent
from the product.

inSync

Druva inSync is the only endpoint data
protection platform that delivers the
needed capabilities to locate custodian
data, place legal holds and provide
an interface for eDiscovery ECA
system ingestion.

With centralized access to endpoint data, organizations can use inSync’s federated search
to identify the location of files — on which device they are stored, as well as the geographic
location of the device itself.

After identifying custodians via federated search or list import, organizations can place legal
holds on stored data, suspending retention policies and preserving the content in place —
ensuring it remains securely stored and immutable until it needs to be reviewed.

inSync keeps full audit trails to the content that is stored and accessed within the system. These
audit trails include all end-user and IT administrator activity and are tamper-proof to ensure
proper information management procedures were followed.

When legal is ready to transfer held data into an eDiscovery ECA system, inSync provides legal
administrator access to review held data and expose it for ingestion over the network.

5. Proactive Compliance

Compliance

Code42 CrashPlan

Druva inSync

Ability to proactively track, monitor and
be notified of potential data risks

No

Yes

Data capture across all devices

Limited to
on-premises
deployments

Yes

Cloud Apps Data Collection & Archival

No

Yes (Office 365,
Google, Apps,
Box, Salesforce)

Predefined compliance regulation
templates

No

Yes (ex. HIPAA,
GLBA, PCI)

Data capture across cloud applications

No

Yes (Office 365,Google, Apps,Box, Salesforce)

Ability to search across all devices

Ability to search
across a single
user only

Yes

CrashPlan

Code42’s endpoint monitoring uses the CrashPlan app to identify different types of security
events on each device and is simply a data monitoring/logging tool, that lets admins know of
security events. Code42’s endpoint monitoring requires integration with Splunk Enterprise for
any advanced visibility or insights.

CrashPlan’s pattern matching feature relies on a rule-based framework called YARA, which
requires admins to place a file on each end-user’s device that uses endpoint detection. CrashPlan’s
pattern matching feature also requires the custom scripting and maintaining of the YARA rule file
for every pattern a admin wants to identify. Moreover YARA rules are incapable of reading PDFs,
servilely limiting what is captured.

inSync

With inSync’s proactive compliance, enterprises can automate finding data risks either
related to industry regulations (such as HIPAA, PCI DSS, or GLBA) or based on their own
criteria (human resources, intellectual property,financial policies) stored across end-user
devices and cloud applications.

Predefined, customizable compliance templates: Organizations can select from predefined
compliance templates or customize their own. Proactive Compliance automatically scans the
data — wherever it is — and highlights troublesome items (such as social security numbers or
health record data), and alerts the right people when suspect materials are found.

Investigative search: When handling an investigation request by the legal team, authorized
users can use inSync’s deep-search and legal hold capabilities to locate suspect materials,
identify possible custodians, and place data on hold for eDiscovery purposes.

Because CashPlan still uses Java Virtual Machine (JVM), as the number of users and devices in a
Code42 environment increases, the amount of Java Virtual Machine (JVM) heap space memory
consumed in Code42 server(s) will also increase, resulting in Java “out of memory” (OOM) errors

inSync

With inSync, customers have complete data privacy.

Unique digital envelope encryption ensures that encryption keys are never stored in the
cloud or on endpoints, preventing anyone except the customer from accessing data

inSync

Druva is built on native cloud technologies utilizing the power of the public cloud – Amazon
Web Services (S3, DynamoDB, EC2), and Microsoft Azure, the two highest rated and most
secure infrastructures available. By taking this approach we’ve removed all bottlenecks
to scalability and elasticity that tends to plague systems that were initially designed for
on-premise and retrofitted to the cloud. Our customers can leverage any of the AWS or
Azure regions, and many of our global customers use multiple regions for addressing data
residency/privacy regulations; for example in Germany.

Industry’s best cloud infrastructure

Certified cloud operations

8. Integrated file sync & share

Integrated File Sync & Share

Code42 CrashPlan for Enterprise

Druva inSync

Integrated file sharing with IT visibility

No

Yes, integrated

CrashPlan

Code42 announced the end of life for SharePlan, in August 2015.

inSync

inSync was the first provider
to integrate secure file
synchronization and sharing with
endpoint backup, and seamlessly
integrate user productivity while
giving IT admins granular control
over sharing.

Conclusion

Code42 CrashPlan is an inadequate backup solution for the needs of today’s mobile
enterprise. On the other hand, inSync offers the industry’s best data protection solution for
all enterprise endpoints: laptops, smartphones and tablets. Validated by leading analysts
firms (Gartner rated Druva highest overall product score three time in a row) and a growing
customer base, inSync dramatically improves IT efficiencies and end-user productivity. A
recent study conducted by the Ponemon Institute, Quantifying the Value of Unified Endpoint
Data Management, indicates that enterprises can save more than $8,100 per user by
employing a solution like inSync, which integrates endpoint backup with secure file sharing,
DLP and analytics.